We’re a Helpless Victim

Posted on 26 June 2015 by eehines

That’s OPM Director Katherine Archuleta’s claim regarding the hack of her agency’s computer systems that now appear to expose as many as 18 million…what shall we call these, since OPM has laid claim to the victimhood in this failure…Americans.

I don’t believe anyone is personally responsible[.]

Fox News cited her further:

Archuleta said only the perpetrators should be blamed—she said current failures result from decades of meager investment in security systems, but said changes are being made and in fact helped detect the latest breaches.

Then there are these, via The Wall Street Journal:

Way back in March 2014, OPM knew that Chinese hackers had accessed its system without having downloaded files.

And

While little noticed, the IRS admitted this spring it was also the subject of a Russian hack, in which thieves grabbed 100,000 tax returns and requested 15,000 fraudulent refunds. Officials have figured out that the hackers used names and Social Security data to pretend to be the taxpayers and break through weak IRS cyber-barriers. As Wisconsin Senator Ron Johnson has noted, the Health and Human Services Department and Social Security Administration use the same weak security wall to guard ObamaCare files and retirement information. Yet the Administration is hardly rushing to fix the problem.

There’s speculation elsewhere that Snowden’s thefts and travels have had a hand in these. Frankly, I think his hands are clean on this one, except perhaps as a sanity check for Russia and the PRC in the before and aftermath stages of these hacks. These hacks are the direct result of long-standing utter incompetence and of this administration’s disdain for anything having to do with security.

It’s long past time for folks to be fired for cause at the OPM and IRS—and elsewhere, if they show no concrete progress in a very short time—down to middle management level in the CIOs’ areas. Why so far down the food chain? If they haven’t been screaming bloody murder over these vulnerabilities, they’re either incompetent themselves, or they put their job security ahead of our nation’s security.

This incompetence also seems to necessitate a pretty thorough removal and replacement of Federal government officials and employees—through no fault of their own, but from OPM (et al.) incompetence. They’ve become vulnerable, and through them, our government has become vulnerable. The only way to reduce the threat to these people is to reduce their value to our enemies by removing them from government. That’s what Archuleta’s victimhood has wrought.

Federal Security and Privacy

Posted on 17 June 2015 by eehines

A government data warehouse stores personal information forever on millions of people who seek coverage under President Obama’s health care law, including those who open an account on HealthCare.gov [ObamaMart] but don’t sign up for coverage.

The Feds are proud of that, too:

The health care system, known as MIDAS, is described on a federal website as the “perpetual central repository” for information that the Affordable Care Act authorizes federal agencies to collect.

“Data in MIDAS is maintained indefinitely at this time,” says another document, a government privacy assessment dated Jan 15.

Never mind that

Marilyn Tavenner, the Medicare administrator at the time, told a congressional hearing that the program’s technology infrastructure was designed “to minimize all possible security vulnerability.”

“And we especially focused on storing the minimum amount of personal data possible[.]”

Or that proper information security technique has data destroyed after a fixed period of time, not held in perpetuity, or for as long as convenient to the holder of those data.

And this gem:

The Obama administration says MIDAS is essential to the smooth operation of the health care law’s insurance markets and meets or exceeds federal security and privacy standards.

The Obama administration has shown us, with OPM, just how shockingly low those security and privacy standards are.

Hmm….

American Security

Posted on 11 June 2015 by eehines

Thinks about the Obama administration’s current, and ongoing, failure regarding the Office of Personnel Management. After having “lost” the background check data it had “stored” in its computer facility last fall, the Inspector General of OPM said that

parts of its network should be shut down because they were riddled with weaknesses that “could potentially have national security implications.”

OPM didn’t bother. Now we learn that People’s Republic of China hackers (should we start calling them invaders?) entered OPM’s computer network and stole the personal data of all 2+ million Federal employees and the personal data of a skosh under an addition 2 million past Federal employees. As The Wall Street Journal put it,

[T]his isn’t a James Bond movie. It’s a Dilbert cartoon.

The WSJ goes on to say that the Federal bureaucracy can’t protect its data. I say, given the long-term duration of these hacks, including those by Russian and Iranian hacks and that IG recommendation, it’s not a matter “can’t.” The Feds refuse to try.

Are these hacks or an ongoing invasion?

The episode is one more confirmation that China is waging an unrelenting if unacknowledged cyber war against the United States.

Does Obama care at all about the security of the United States or of individual Americans?

A Proper Ruling

Posted on 8 May 2015 by eehines

And by Article III judges….

The Second Circuit appellate court has ruled in favor of individual liberty, privacy, and free speech all in one ruling.

[The Second Circuit] ruled Thursday the National Security Agency’s controversial collection of millions of Americans’ phone records isn’t authorized by the Patriot Act, as the Bush and Obama administrations have long maintained.

The Court held, in part,

…we hold that the text of [the law in question] cannot bear the weight the government asks us to assign to it, and that it does not authorize the telephone metadata program. We do so comfortably in the full understanding that if Congress chooses to authorize such a far‐reaching and unprecedented program, it has every opportunity to do so, and to do so unambiguously. Until such time as it does so, however, we decline to deviate from widely accepted interpretations of well‐established legal standards.

Indeed. The question is a political one and not a judicial one. It may be that Congress will screw this up and authorize the thing, but in that event we have recourse: we can fire the blackguards in an upcoming election and select, instead, representatives who understand our rights as free men.

The court’s ruling was based on one of the core questions regarding this law:

[T]he government takes the position that the metadata collected—a vast amount of which does not contain directly “relevant” information, as the government concedes—are nevertheless “relevant” because they may allow the NSA, at some unknown time in the future, utilizing its ability to sift through the trove of irrelevant data it has collected up to that point, to identify information that is relevant. We agree with appellants that such an expansive concept of “relevance” is unprecedented and unwarranted.

Sorry guys—no fishing expeditions, either.

The Second Circuit’s ruling can be read here.

Assault on Conservatives

Posted on 6 April 2015 by eehines

…by the Obama administration is continuing in spades. This time, it’s a naked assault on a conservative Congressman, Jason Chaffetz (R, UT). The Secret Service “leaked” information concerning a decade old application for work with the SS submitted by Chaffetz and which was rejected by the SS. This sort of thing is confidential, which SS employees know full well.

Supposedly, Homeland Security Secretary Jeh Johnson personally called Chaffetz after the release of that confidential information, as did Secret Service Director Joseph Clancy.

However.

Chaffetz is Chairman of the House Oversight and Government Reform Committee, and he’s

been relentless in his scrutiny of the [Secret Service], particularly in the wake of a March incident where agents returning from a party drove into an active bomb investigation scene. Chaffetz earlier this week subpoenaed the two agents in question—a step Johnson called “unprecedented and unnecessary.”

He’s also been an ardent critic of Obama administration policies all across the board.

Now, it’s certainly true that, in the larger scheme of things, this is a relatively minor matter. But regarding that larger scheme of things, this is a part of that larger scheme.

In light of that, what’s the value of these…apologies?

How do they make Chaffetz, the victim of this assault on privacy, whole?

How do they give any material assurance that this miscreancy won’t be repeated?

What’s really needed is a wholesale replacement of management (I won’t say leadership) of DHS and of the Secret Service.

Remember this in the fall of 2016.

TANSTAAFL

2 + 2 must always = 4
–Polish proverb

Be not intimidated… nor suffer yourselves to be wheedled out of your liberties by any pretense of politeness, delicacy, or decency. These, as they are often used, are but three different names for hypocrisy, chicanery and cowardice.
–John Adams

Nothing in the universe has a shorter half-life than a politician’s memory for inconvenient facts.
–Admiral Hamish Alexander, RMN

Dawn is nature’s way of telling you to go to bed.
And to just stay there until the evil yellow disk is gone again.
–Anonymous

In a polity, each citizen is to possess his own arms, which are not supplied or owned by the state.
–Aristotle

The way to stop discrimination on the basis of race is to stop discriminating on the basis of race.
–Chief Justice John Roberts.

A yawn is a silent scream for coffee.
–Shane Mclean

If I had eight hours to chop down a tree, I’d spend six hours sharpening my ax.
–Abraham Lincoln

S	M	T	W	T	F	S
					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30

A Plebe's Site

Quam bene vivas referre, non quam diu.

Tag Archives: privacy

We’re a Helpless Victim

Federal Security and Privacy

American Security

A Proper Ruling

Assault on Conservatives